Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS10753.roa
File: AS10753.roa (raw, json)
Hash identifier: MrTTszPUz5aEcHFwsHsIVjQYSL841C8Y14nzqKa37N4=
Subject key identifier: 92:E2:23:93:5A:CC:3A:62:0C:7E:73:9A:A3:F4:D2:05:04:55:CD:FF
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 38FCD0414BA47E6E1CF7F2B5D5D9BE6170091CFD
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS10753.roa
Signing time: Thu 19 Dec 2024 10:51:13 +0000
ROA not before: Thu 19 Dec 2024 10:46:13 +0000
ROA not after: Thu 18 Dec 2025 10:51:13 +0000
asID: 10753
IP address blocks: 181.215.62.0/24 maxlen: 24
181.215.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 28 Dec 2024 10:53:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:fc:d0:41:4b:a4:7e:6e:1c:f7:f2:b5:d5:d9:be:61:70:09:1c:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Dec 19 10:46:13 2024 GMT
Not After : Dec 18 10:51:13 2025 GMT
Subject: CN=92E223935ACC3A620C7E739AA3F4D2050455CDFF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:98:a6:a1:9e:12:f3:19:ea:e8:c2:17:9b:86:
5f:ae:f1:ad:ad:ac:55:eb:00:0f:a3:d1:27:ae:b4:
85:69:4a:f4:e0:72:85:ca:c5:7b:75:cd:ec:8e:a3:
65:bb:84:9c:4b:a1:dd:0c:0a:2f:02:00:dd:bb:40:
51:09:91:85:13:7d:65:9c:d9:6c:58:52:7c:7f:80:
a2:db:03:4a:fd:4d:ed:29:ed:78:b7:fc:ad:6d:8f:
04:5e:78:b7:41:f6:74:6d:39:c0:2e:5d:5a:d2:8a:
e2:d6:f8:11:d6:54:c7:fc:da:bf:cd:39:4b:9b:b7:
7f:50:df:78:02:15:06:ef:c7:41:e8:c4:dd:e7:f4:
23:d9:94:22:11:e2:7e:f3:fd:69:6e:2a:64:a3:11:
a8:b0:21:b6:d2:19:c4:ca:fc:0d:d3:7d:9b:e4:9f:
41:b5:a0:8c:a2:8f:76:ef:63:91:5a:eb:13:3d:7a:
71:87:6c:2c:52:99:f7:0d:9a:f6:b1:6d:16:17:1f:
11:d1:76:f1:7f:92:a8:96:c6:e1:ce:6c:4c:df:da:
9f:4b:12:64:18:d1:57:58:0e:e7:54:10:3a:d5:cd:
69:60:84:1a:8a:89:bb:7f:c4:f1:47:f6:52:d4:66:
db:3d:91:cf:01:80:5a:44:82:cf:12:b5:e2:34:72:
69:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:E2:23:93:5A:CC:3A:62:0C:7E:73:9A:A3:F4:D2:05:04:55:CD:FF
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS10753.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.215.62.0/24
181.215.95.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:6c:1b:56:8d:e2:ad:c3:90:b4:ef:ca:65:79:37:6e:99:48:
97:79:68:21:97:f4:d1:ab:a1:e8:df:88:83:c0:7d:a3:3c:d4:
4c:ad:c0:96:a4:10:1e:22:28:bd:2f:77:f9:75:74:ee:12:5b:
2c:92:d8:60:d3:57:02:85:6d:0f:af:cb:45:cd:a0:0e:d2:15:
2a:dc:a8:10:71:4c:d5:c0:c8:57:f2:c9:c7:54:3d:e6:ca:ba:
12:df:d6:5c:64:74:05:0e:75:c0:97:cb:33:00:74:98:2b:be:
a0:f3:e4:9d:ab:77:e6:f5:1f:55:84:35:2f:1a:80:7a:46:f3:
e0:b0:c8:fd:02:dd:d3:95:a5:53:52:89:ba:2f:04:7b:59:72:
ea:ba:29:1c:7b:9a:71:3c:18:1f:ae:21:09:70:2e:9a:70:8c:
ca:f6:e8:56:84:1d:ec:5a:c6:24:32:4d:bd:f0:76:c5:b5:35:
8b:a1:40:13:b8:aa:0c:85:b5:a6:3e:b4:9e:a9:95:f8:94:99:
52:48:8e:47:ce:78:b0:86:5f:c5:16:fb:f5:80:74:99:8f:1e:
dc:bd:0c:3f:ed:24:7e:c6:b3:3a:6e:3d:f5:69:b9:cf:64:83:
b3:2d:61:5e:2c:03:3f:ac:2c:10:a2:53:ea:49:c2:c4:fa:f5:
00:7d:2d:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:33:56 2025 by rpki-client